Intrusion Prevention

LibreOffice.RTF.Parser.Memory.Corruption

Description

This indicates an attack attempt to exploit a Use-After-Free vulnerability in LibreOffice.
The vulnerability is due to improper parsing of a crafted file by the vulnerable application. An attacker can exploit this by tricking an unsuspecting user into opening a malicious crafted file and execute arbitrary code within the context of the current user.

Affected Products

LibreOffice LibreOffice prior to 5.1.4

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the latest update from the vendor.
https://www.libreoffice.org/about-us/security/advisories/cve-2016-4324/

CVE References

CVE-2016-4324